salesforce.com, inc.
Director, BISO of Security Services and Tools
salesforce.com, inc., San Francisco, California, United States, 94199
To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.Job Category:
ProductAbout Salesforce:We're Salesforce, the Customer Company, inspiring the future of business with AI + Data + CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too - driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good - you've come to the right place.About Our Team:In the capacity of the Business Information Security Officer (BISO) for Salesforce Security Services and Tools, you will collaborate with technical authorities, product managers, and engineering teams to streamline our security tooling, prioritize risks, and ensure the effective protection of our SaaS products!Responsibilities:Prioritize Risk Remediation:
Work closely with the security tooling team, business engineering teams, and domain experts within security to prioritize security risks. Develop metrics and guidelines to measure the impact of vulnerabilities and guide remediation efforts.Tool Optimization and Assessment:
Continuously assess the effectiveness of security tools against our evolving security goals, identifying areas of improvement.Cultivate a collaborative environment between security, product, and engineering teams.Develop strategies to reduce alert fatigue and improve the efficiency of security incident response.Minimum Qualifications:Bachelor's degree in Computer Science, Information Security or any equivalent fields.8+ years of relevant work experience, particularly in securing large, globally distributed cloud-based or mobile-embedded platforms.Proven experience in security tooling management, security tool vendor assessment, risk assessment, and remediation within a sophisticated enterprise environment.Proven understanding of security standard processes, frameworks (e.g., NIST, ISO 27001), and regulations (e.g., GDPR, CCPA).Excellent analytical and problem-solving skills, with the ability to identify and address sophisticated security challenges.Required Qualifications:Security Knowledge:
Understanding of application architectures, design principles, common security flaws, and mitigation techniques as outlined by OWASP and SANS.Problem-Solving:
Demonstrated ability to evaluate system security, identify patterns, and investigate sophisticated issues.Executive Communication:
Ability to effectively communicate sophisticated security concepts and recommendations to senior leadership in a clear and concise manner.Vendor Management:
Experience negotiating with security tool vendors and handling vendor relationships to ensure efficient tool performance and support.Ability to make data-driven, risk-based decisions.Interpersonal Skills:
Excellent interpersonal and communication skills, with a results-oriented mindset.*LI-YAccommodations:
If you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.Posting Statement:
At Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at
www.equality.com
and explore our company benefits at
www.salesforcebenefits.com .Salesforce
is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status.
Salesforce
does not accept unsolicited headhunter and agency resumes.
Salesforce
will not pay any third-party agency or company that does not have a signed agreement with
Salesforce .Salesforce welcomes all.Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records. For Washington D.C based roles, the base salary hiring range for this position is $204,400 to $296,400. For California-based roles, the base salary hiring range for this position is $223,000 to $323,400. Compensation offered will be determined by factors such as location, level, job-related knowledge, skills, and experience. Certain roles may be eligible for incentive compensation, equity, benefits. More details about our company benefits can be found at the following link:
https://www.salesforcebenefits.com .
#J-18808-Ljbffr
ProductAbout Salesforce:We're Salesforce, the Customer Company, inspiring the future of business with AI + Data + CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too - driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good - you've come to the right place.About Our Team:In the capacity of the Business Information Security Officer (BISO) for Salesforce Security Services and Tools, you will collaborate with technical authorities, product managers, and engineering teams to streamline our security tooling, prioritize risks, and ensure the effective protection of our SaaS products!Responsibilities:Prioritize Risk Remediation:
Work closely with the security tooling team, business engineering teams, and domain experts within security to prioritize security risks. Develop metrics and guidelines to measure the impact of vulnerabilities and guide remediation efforts.Tool Optimization and Assessment:
Continuously assess the effectiveness of security tools against our evolving security goals, identifying areas of improvement.Cultivate a collaborative environment between security, product, and engineering teams.Develop strategies to reduce alert fatigue and improve the efficiency of security incident response.Minimum Qualifications:Bachelor's degree in Computer Science, Information Security or any equivalent fields.8+ years of relevant work experience, particularly in securing large, globally distributed cloud-based or mobile-embedded platforms.Proven experience in security tooling management, security tool vendor assessment, risk assessment, and remediation within a sophisticated enterprise environment.Proven understanding of security standard processes, frameworks (e.g., NIST, ISO 27001), and regulations (e.g., GDPR, CCPA).Excellent analytical and problem-solving skills, with the ability to identify and address sophisticated security challenges.Required Qualifications:Security Knowledge:
Understanding of application architectures, design principles, common security flaws, and mitigation techniques as outlined by OWASP and SANS.Problem-Solving:
Demonstrated ability to evaluate system security, identify patterns, and investigate sophisticated issues.Executive Communication:
Ability to effectively communicate sophisticated security concepts and recommendations to senior leadership in a clear and concise manner.Vendor Management:
Experience negotiating with security tool vendors and handling vendor relationships to ensure efficient tool performance and support.Ability to make data-driven, risk-based decisions.Interpersonal Skills:
Excellent interpersonal and communication skills, with a results-oriented mindset.*LI-YAccommodations:
If you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.Posting Statement:
At Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at
www.equality.com
and explore our company benefits at
www.salesforcebenefits.com .Salesforce
is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status.
Salesforce
does not accept unsolicited headhunter and agency resumes.
Salesforce
will not pay any third-party agency or company that does not have a signed agreement with
Salesforce .Salesforce welcomes all.Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records. For Washington D.C based roles, the base salary hiring range for this position is $204,400 to $296,400. For California-based roles, the base salary hiring range for this position is $223,000 to $323,400. Compensation offered will be determined by factors such as location, level, job-related knowledge, skills, and experience. Certain roles may be eligible for incentive compensation, equity, benefits. More details about our company benefits can be found at the following link:
https://www.salesforcebenefits.com .
#J-18808-Ljbffr